32 matches found
MiracleLinux 3 : sendmail-8.13.8-8.0.1.AXS3 (AXSA:2010-193:01)
The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2010-193:01 advisory. The Sendmail program is a very widely used Mail Transport Agent MTA. MTAs send mail from one machine to another. Sendmail is not a client program,...
AIX 5.3 TL 8 : sendmail (IZ72834)
'sendmail before 8.14.4 does not properly handle a '\0' character in a Common Name CN field of an X.509 certificate, which 1 allows man-in-the-middle attackers to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and 2 allows...
AIX 5.3 TL 9 : sendmail (IZ72835)
'sendmail before 8.14.4 does not properly handle a '\0' character in a Common Name CN field of an X.509 certificate, which 1 allows man-in-the-middle attackers to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and 2 allows...
AIX 6.1 TL 3 : sendmail (IZ72510)
'sendmail before 8.14.4 does not properly handle a '\0' character in a Common Name CN field of an X.509 certificate, which 1 allows man-in-the-middle attackers to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and 2 allows...
AIX 5.3 TL 10 : sendmail (IZ72836)
'sendmail before 8.14.4 does not properly handle a '\0' character in a Common Name CN field of an X.509 certificate, which 1 allows man-in-the-middle attackers to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and 2 allows...
Gentoo Security Advisory GLSA 201206-30 (sendmail)
The remote host is missing updates announced in advisory GLSA 201206-30. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 201206-30 (sendmail)
The remote host is missing updates announced in advisory GLSA 201206-30. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Scientific Linux Security Update : sendmail on SL5.x i386/x86_64
The configuration of sendmail in Scientific Linux was found to not reject the 'localhost.localdomain' domain name for email messages that come from external hosts. This could allow remote attackers to disguise spoofed messages. CVE-2006-7176 A flaw was found in the way sendmail handled NUL...
RHEL 4 : sendmail (RHSA-2011:0262)
Updated sendmail packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
sendmail security and bug fix update
8.13.1-6 - rpm attributes S,5,T not recorded for statistics file - fix specfile for passing rpm -V test 8.13.1-5 - recompile with -fno-strict-aliasing - fix typo, purge-mqueue script - remove README.certcnnul 8.13.1-4 - fix CVE-2009-4565 554987 - fix MAXHOSTNAMELEN 485380 - fix stale files in...
RedHat Update for sendmail RHSA-2011:0262-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Low: Red Hat Security Advisory: sendmail security and bug fix update
Updated sendmail packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
SuSE 10 Security Update : sendmail (ZYPP Patch Number 6860)
This update of sendmail improves the handling of special-characters in the SSL certificate. CVE-2009-4565: CVSS v2 Base Score: 7.5 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Fedora 12 : sendmail-8.14.4-3.fc12 (2010-5470)
This new version of sendmail fixes security bug - handling of bogus certificates with NULLs in CNs. Also many other bugs have been fixed, for complete list please see: http://www.sendmail.org/releases/8.14.4 Note that Tenable Network Security has extracted the preceding description block directly...
Fedora Update for sendmail FEDORA-2010-5470
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for sendmail FEDORA-2010-5399
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Vulnerability in Diffie-Hellman ciphers affects sendmail on VIOS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Mon Mar 29 15:54:57 CDT 2010 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/sendmailadvisory.asc VULNERABILITY SUMMARY VULNERABILITY: AIX sendmail SSL...
Low: Red Hat Security Advisory: sendmail security and bug fix update
Updated sendmail packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
SuSE9 Security Update : sendmail (YOU Patch Number 12590)
This update of sendmail improves the handling of special-characters in the SSL certificate. CVE-2009-4565: CVSS v2 Base Score: 7.5 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
openSUSE Security Update : rmail (rmail-2012)
This update of sendmail improves the handling of special-characters in the SSL certificate. CVE-2009-4565: CVSS v2 Base Score: 7.5 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update rmail-2012. T...